CVE-2022-20796
MEDIUMClamAV 0.103.4-0.103.5 and 0.104.1-0.104.2 - Authenticated Denial of Service via NULL Pointer Dereference
Title source: llmDescription
On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticated, local attacker to cause a denial of service condition on an affected device. For a description of this vulnerability, see the ClamAV blog.
References (6)
Core 6
Core References
Third Party Advisory vendor-advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-vL9x58p4
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
Mailing List, Third Party Advisory vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
Mailing List, Third Party Advisory mailing-list
https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
Third Party Advisory vendor-advisory
https://security.gentoo.org/glsa/202310-01
Scores
CVSS v3
6.5
EPSS
0.0039
EPSS Percentile
30.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-476
CWE-822
Status
published
Products (11)
cisco/secure_endpoint
< 1.16.3
cisco/secure_endpoint
< 1.17.2
cisco/secure_endpoint
< 7.5.5
clamav/clamav
0.103.4
clamav/clamav
0.103.5
clamav/clamav
0.104.1
clamav/clamav
0.104.2
debian/debian_linux
9.0
fedoraproject/fedora
34
fedoraproject/fedora
35
... and 1 more
Published
May 04, 2022
Tracked Since
Feb 18, 2026